$ rpki-client -vvf rpki.apnic.net/member_repository/A91DEF41/C75DA132F2FB11EE9FCF764CC4F9AE02/M23efsMoBJmWQ3HK7iYg-_ys3Jg.mft File: M23efsMoBJmWQ3HK7iYg-_ys3Jg.mft (raw, json) Hash identifier: EBgKiTa4g5DFsIBjMCLTHR8/w8viRusU2y9fTKCgh0k= Subject key identifier: 9D:71:A4:E7:D0:71:68:02:60:47:A0:B8:74:E2:DB:B4:3F:F4:25:DA Authority key identifier: 33:6D:DE:7E:C3:28:04:99:96:43:71:CA:EE:26:20:FB:FC:AC:DC:98 Certificate issuer: /CN=A91DEF41/serialNumber=336DDE7EC3280499964371CAEE2620FBFCACDC98 Certificate serial: 0126 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/M23efsMoBJmWQ3HK7iYg-_ys3Jg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91DEF41/C75DA132F2FB11EE9FCF764CC4F9AE02/M23efsMoBJmWQ3HK7iYg-_ys3Jg.mft Manifest number: 011C Signing time: Tue 07 Oct 2025 05:04:01 +0000 Manifest this update: Tue 07 Oct 2025 05:04:01 +0000 Manifest next update: Tue 14 Oct 2025 05:04:01 +0000 Files and hashes: 1: M23efsMoBJmWQ3HK7iYg-_ys3Jg.crl (hash: eRv5pxDpi0kM1b2308I99ii353iVWGApxU4H2i0Uxr4=) 2: 1698D0A4F3C511EEA51BD730C4F9AE02.roa (hash: dK1RlQyJjeiwzuMRZD6/CsndMyibK0XoFCLqDbss32s=) 3: 069E7950F3C611EE807A6F3EC4F9AE02.roa (hash: GMXU4PxSO88RcbBqzb2gyEchtqA2OVDVG15sHhZwd7g=) 4: 07258E36F3C611EE807A6F3EC4F9AE02.roa (hash: UOVpPqyzylpvUS4PFJS4QPq1eALE7pHfj83Afvy+ymM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91DEF41/C75DA132F2FB11EE9FCF764CC4F9AE02/M23efsMoBJmWQ3HK7iYg-_ys3Jg.crl rsync://rpki.apnic.net/member_repository/A91DEF41/C75DA132F2FB11EE9FCF764CC4F9AE02/M23efsMoBJmWQ3HK7iYg-_ys3Jg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/M23efsMoBJmWQ3HK7iYg-_ys3Jg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 14 Oct 2025 05:04:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 294 (0x126) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DEF41, serialNumber=336DDE7EC3280499964371CAEE2620FBFCACDC98 Validity Not Before: Oct 7 05:04:01 2025 GMT Not After : Oct 14 05:04:01 2025 GMT Subject: CN=68e49f41-7ce3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cc:f0:84:53:b3:fb:a6:4f:7f:8f:57:1a:a9:b8: 6b:9b:59:74:f9:09:92:94:8d:df:4c:6b:03:01:f9: 0b:b8:e9:59:f6:28:0a:df:f5:d6:8b:f3:89:f9:21: 8e:cf:f6:d6:a1:de:18:5a:5b:89:93:3e:e6:e2:e2: aa:45:df:9c:da:c9:33:96:d8:8d:cb:18:23:80:5f: 83:5c:45:85:01:54:50:65:b2:e0:e2:aa:78:81:83: b1:5c:d2:5c:88:63:c9:ca:f7:54:a1:eb:10:13:a6: 85:54:1f:60:49:d3:eb:b8:dc:49:a8:1b:3f:6b:28: 32:9b:f8:8d:5b:b6:4e:5a:bf:ce:a8:a3:29:f9:05: 29:f2:9c:3f:fc:76:67:5d:ee:78:47:cc:17:6a:a1: c7:54:37:96:b4:c5:c3:7a:b1:f6:f8:17:f2:5f:21: 6b:46:d4:54:14:5c:2a:69:b3:70:33:7e:d7:d8:0d: 96:fd:c5:65:af:45:57:c5:ec:62:58:4a:b8:63:0b: d6:d3:50:0b:1a:09:ee:63:cf:f8:49:9c:08:05:e8: 81:cf:44:ae:9a:6f:52:8f:1e:46:14:35:4d:ab:42: 8a:ee:a3:7a:99:e4:1b:7f:f7:13:1c:77:22:c8:d3: c3:2c:75:6d:5d:bf:3c:a8:96:e0:3a:b8:12:cb:69: 6f:31 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9D:71:A4:E7:D0:71:68:02:60:47:A0:B8:74:E2:DB:B4:3F:F4:25:DA X509v3 Authority Key Identifier: keyid:33:6D:DE:7E:C3:28:04:99:96:43:71:CA:EE:26:20:FB:FC:AC:DC:98 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91DEF41/C75DA132F2FB11EE9FCF764CC4F9AE02/M23efsMoBJmWQ3HK7iYg-_ys3Jg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/M23efsMoBJmWQ3HK7iYg-_ys3Jg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DEF41/C75DA132F2FB11EE9FCF764CC4F9AE02/M23efsMoBJmWQ3HK7iYg-_ys3Jg.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 3e:06:95:75:b2:59:d4:68:43:54:71:1d:48:11:be:15:2e:f4: 2b:35:04:a8:94:75:fe:c8:4a:3e:2a:52:f3:6e:5d:13:81:12: 54:9d:b2:3c:f6:b4:f4:16:b6:17:4e:f8:3d:e1:11:87:b3:67: 59:75:1f:70:41:3f:a1:d6:2e:2d:d1:ff:d1:dd:9a:38:d7:73: d0:35:66:b3:98:92:f7:6a:04:3c:ab:ed:dd:df:81:54:f7:08: d7:d1:16:c0:f3:86:45:c3:9a:8f:9d:9f:02:98:9a:4e:d2:4d: 26:c5:cb:29:1b:47:99:ed:03:46:a5:ec:2e:57:6b:03:7a:1b: a2:ed:c7:e4:7c:0b:cb:a1:e3:4d:0d:89:7b:cd:b7:e7:fc:62: b1:c2:17:37:5f:1c:ff:13:15:72:3c:88:b4:18:7d:bd:c0:52: 30:e7:92:4e:10:09:68:b7:3a:e6:de:dc:a2:6b:23:0b:10:30: bb:1b:07:88:c1:7b:37:38:57:39:99:e9:53:02:5b:04:f1:cc: d2:f4:27:0c:0a:e5:41:48:e2:95:13:0a:b9:ae:25:0f:8a:35: 23:c5:2b:bd:5f:e1:0f:c3:5e:c9:77:a0:51:17:6c:b9:77:cd: a3:d3:ac:55:8c:95:61:67:e6:ef:a4:fe:dc:3c:f4:14:92:6f: df:0b:f3:19 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICASYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx REVGNDExMTAvBgNVBAUTKDMzNkRERTdFQzMyODA0OTk5NjQzNzFDQUVFMjYyMEZC RkNBQ0RDOTgwHhcNMjUxMDA3MDUwNDAxWhcNMjUxMDE0MDUwNDAxWjAYMRYwFAYD VQQDEw02OGU0OWY0MS03Y2UzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzPCEU7P7pk9/j1caqbhrm1l0+QmSlI3fTGsDAfkLuOlZ9igK3/XWi/OJ+SGO z/bWod4YWluJkz7m4uKqRd+c2skzltiNyxgjgF+DXEWFAVRQZbLg4qp4gYOxXNJc iGPJyvdUoesQE6aFVB9gSdPruNxJqBs/aygym/iNW7ZOWr/OqKMp+QUp8pw//HZn Xe54R8wXaqHHVDeWtMXDerH2+BfyXyFrRtRUFFwqabNwM37X2A2W/cVlr0VXxexi WEq4YwvW01ALGgnuY8/4SZwIBeiBz0Summ9Sjx5GFDVNq0KK7qN6meQbf/cTHHci yNPDLHVtXb88qJbgOrgSy2lvMQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJ1xpOfQ cWgCYEeguHTi27Q/9CXaMB8GA1UdIwQYMBaAFDNt3n7DKASZlkNxyu4mIPv8rNyY MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFERUY0MS9DNzVEQTEzMkYy RkIxMUVFOUZDRjc2NENDNEY5QUUwMi9NMjNlZnNNb0JKbVdRM0hLN2lZZy1feXMz SmcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL00yM2Vmc01vQkptV1EzSEs3aVlnLV95czNKZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE RUY0MS9DNzVEQTEzMkYyRkIxMUVFOUZDRjc2NENDNEY5QUUwMi9NMjNlZnNNb0JK bVdRM0hLN2lZZy1feXMzSmcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA+BpV1slnUaENUcR1IEb4VLvQrNQSolHX+yEo+KlLzbl0TgRJUnbI8 9rT0FrYXTvg94RGHs2dZdR9wQT+h1i4t0f/R3Zo413PQNWazmJL3agQ8q+3d34FU 9wjX0RbA84ZFw5qPnZ8CmJpO0k0mxcspG0eZ7QNGpewuV2sDehui7cfkfAvLoeNN DYl7zbfn/GKxwhc3Xxz/ExVyPIi0GH29wFIw55JOEAlotzrm3tyiayMLEDC7GweI wXs3OFc5melTAlsE8czS9CcMCuVBSOKVEwq5riUPijUjxSu9X+EPw17Jd6BRF2y5 d82j06xVjJVhZ+bvpP7cPPQUkm/fC/MZ -----END CERTIFICATE-----Generated at Wed Oct 8 21:25:31 2025 by rpki-client